In this video we take a look at the following: 1. On Windows Boot VPN connection using Machine/Computer Certs, this connection is restricted to only AD 2. Once logged in, we will automatically be prompted to authenticate to a User Based VPN tunnel using SAML UPDATE: I have decided to cancel part 2 as a result of overly complex implementation, with no real gain over this approach. 00:00 - intro 03:12 - Use case demo 07:26 - FortiGate configuration 11:57 - How to check for Machine Cert on windows 13:24 - Important XML parameters for EMS 15:29 - FortiClient/EMS Configuration 19:17 - Validating our end result 20:42 - Outro